$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0a8a1ff-6c75-4bd2-9cf8-6ccf7c1dbfb8.roa File: b0a8a1ff-6c75-4bd2-9cf8-6ccf7c1dbfb8.roa (raw, json) Hash identifier: oxndLZx1aLmjL7cbs8zCVIob4x2K3Hkx+9edbF3rgsk= Subject key identifier: D0:88:4B:D4:11:FA:F7:3C:2B:D0:77:A6:7D:49:BD:F7:D3:6E:D3:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50E57A13942C1EB5F00E07F8698330BB435A75AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0a8a1ff-6c75-4bd2-9cf8-6ccf7c1dbfb8.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e5:7a:13:94:2c:1e:b5:f0:0e:07:f8:69:83:30:bb:43:5a:75:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=8cb21995321d96126e8ad958fb5c2426848e42d224247d37dfa510d9d447e983, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bb:b1:38:cd:90:ea:fe:69:e3:7a:2b:7b:89: 48:99:3e:6d:2c:d0:ed:59:0e:bc:4f:79:86:94:3f: ed:a2:e4:c0:fa:b4:33:5c:91:df:1e:bb:ae:03:e3: 28:ce:30:9d:9f:fb:ba:a7:74:92:f5:67:5a:ab:d6: 6c:3a:2b:f6:f7:5c:bb:03:ff:5a:a5:da:d1:f4:71: cb:ea:b3:04:e0:b5:b8:9f:69:ca:f8:76:d9:23:88: a9:9d:af:30:61:9b:64:6c:7f:c1:c5:06:12:b7:4a: 3a:2a:0f:d9:3a:17:2e:f1:88:b6:9d:d3:39:64:f1: 80:4c:61:b9:72:f5:5d:c2:be:49:d8:8a:8c:09:6f: 31:59:b9:36:0d:c4:2f:75:6e:58:a8:0f:0f:4e:60: b2:0c:32:bb:17:ee:08:b8:8e:0f:41:37:9d:7a:f2: 73:9a:3d:27:22:c1:93:61:d8:c1:41:74:98:e1:53: 73:8d:e0:db:ce:0e:11:0e:e1:6e:3d:ae:f8:60:c2: 7f:2d:74:d2:5a:a9:db:d7:d1:d5:ef:73:53:96:23: f8:c1:34:fa:d6:b9:fa:c4:94:50:eb:06:b2:89:58: d8:37:2c:4b:1d:f8:a9:87:6b:b6:ff:1b:32:67:f8: d4:63:9e:d4:90:92:00:d5:77:40:50:3d:cf:74:7d: fd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:88:4B:D4:11:FA:F7:3C:2B:D0:77:A6:7D:49:BD:F7:D3:6E:D3:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b0a8a1ff-6c75-4bd2-9cf8-6ccf7c1dbfb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:11:29:66:f0:35:4c:70:1c:20:d2:08:88:4d:79:ad:63:0f: 8b:d3:2c:e2:c9:cb:b9:26:ee:fd:07:4d:4a:cd:dc:25:5b:a4: c9:bd:58:0b:61:f6:a1:c7:4d:fd:6e:c6:45:10:ce:ba:60:dc: f5:42:ee:2a:a0:f1:af:63:f2:fb:cd:13:ff:a0:26:28:3e:d0: ff:1c:2d:cc:35:4c:81:89:79:7c:30:ad:76:7e:89:36:23:74: a7:d4:e8:ce:2b:75:b9:e6:5f:89:e6:2c:e7:7c:e7:1c:03:d8: b8:47:78:f2:3b:54:5b:b0:49:a9:48:a1:bc:90:b7:21:39:db: 75:97:72:58:37:7b:ca:c8:e6:39:65:d5:74:b4:99:a1:80:50: 40:af:5d:f1:32:4e:61:cf:58:df:95:92:6a:a7:06:b9:cb:3e: e9:42:fb:e7:b2:6b:24:e0:a0:93:6b:80:2f:a7:50:44:f9:74: d7:4f:86:bf:bd:28:05:0d:fc:ff:1e:d5:2b:86:c7:fa:1b:4f: 2a:31:cc:59:ef:0b:70:be:d9:20:9b:24:f4:a3:41:85:ba:8f: a6:50:09:9e:32:ee:3d:7a:ec:2a:b0:0d:7f:6a:12:85:42:93: f2:22:6e:48:36:4b:15:ee:cd:ab:69:8e:b6:82:c4:64:3a:1e: ec:fa:8d:7d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUOV6E5QsHrXwDgf4aYMwu0NadaswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2IyMTk5NTMyMWQ5NjEyNmU4YWQ5NThmYjVjMjQyNjg0 OGU0MmQyMjQyNDdkMzdkZmE1MTBkOWQ0NDdlOTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRu7E4zZDq/mnjeit7iUiZPm0s0O1ZDrxPeYaUP+2i5MD6 tDNckd8eu64D4yjOMJ2f+7qndJL1Z1qr1mw6K/b3XLsD/1ql2tH0ccvqswTgtbif acr4dtkjiKmdrzBhm2Rsf8HFBhK3SjoqD9k6Fy7xiLad0zlk8YBMYbly9V3CvknY iowJbzFZuTYNxC91blioDw9OYLIMMrsX7gi4jg9BN5168nOaPSciwZNh2MFBdJjh U3ON4NvODhEO4W49rvhgwn8tdNJaqdvX0dXvc1OWI/jBNPrWufrElFDrBrKJWNg3 LEsd+KmHa7b/GzJn+NRjntSQkgDVd0BQPc90ff3FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0IhL1BH69zwr0HemfUm999Nu03AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IwYThhMWZmLTZjNzUtNGJkMi05Y2Y4LTZjY2Y3YzFkYmZiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoyTANBgkqhkiG9w0BAQsFAAOCAQEAyxEpZvA1THAcINIIiE15rWMPi9Ms 4snLuSbu/QdNSs3cJVukyb1YC2H2ocdN/W7GRRDOumDc9ULuKqDxr2Py+80T/6Am KD7Q/xwtzDVMgYl5fDCtdn6JNiN0p9Tozit1ueZfieYs53znHAPYuEd48jtUW7BJ qUihvJC3ITnbdZdyWDd7ysjmOWXVdLSZoYBQQK9d8TJOYc9Y35WSaqcGucs+6UL7 57JrJOCgk2uAL6dQRPl010+Gv70oBQ38/x7VK4bH+htPKjHMWe8LcL7ZIJsk9KNB hbqPplAJnjLuPXrsKrANf2oShUKT8iJuSDZLFe7Nq2mOtoLEZDoe7PqNfQ== -----END CERTIFICATE-----Generated at Thu May 2 06:12:46 2024 by rpki-client on console-fra.rpki-client.org